CVE-2025-40145

Summary

In the Linux kernel, the following vulnerability has been resolved:

PCI/pwrctrl: Fix double cleanup on devm_add_action_or_reset() failure

When devm_add_action_or_reset() fails, it calls the passed cleanup function. Hence the caller must not repeat that cleanup.

Replace the "goto err_regulator_free" by the actual freeing, as there will never be a need again for a second user of this label.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux75996c92f4de309f855471927e6489f5a354cfd4 < 77732c58fef6247b71493dc3997af0ec0aaad5c7affected
LinuxLinux75996c92f4de309f855471927e6489f5a354cfd4 < ab81f2f79c683c94bac622aafafbe8232e547159affected
LinuxLinux6.15affected
LinuxLinux0 < 6.15unaffected
LinuxLinux6.17.3 <= 6.17.*unaffected
LinuxLinux6.18 <= *unaffected

Weaknesses

References